[github/fretlink/hmacaroons.git] / src / Crypto / Macaroon / Verifier.hs

{-# LANGUAGE FlexibleInstances    #-}
{-# LANGUAGE OverloadedStrings    #-}
{-# LANGUAGE RankNTypes           #-}
{-# LANGUAGE TypeSynonymInstances #-}
{-# LANGUAGE UndecidableInstances #-}
{-|
Module      : Crypto.Macaroon.Verifier
Copyright   : (c) 2015 Julien Tanguy
License     : BSD3

Maintainer  : julien.tanguy@jhome.fr
Stability   : experimental
Portability : portable


-}
module Crypto.Macaroon.Verifier (
    verify
  , ValidationError(ValidatorError, ParseError)
  -- , (.<), (.<=), (.==), (.>), (.>=)
  -- , module Data.Attoparsec.ByteString.Char8
) where


import           Control.Monad
import           Control.Monad.IO.Class
import           Data.Attoparsec.ByteString
import           Data.Attoparsec.ByteString.Char8
import           Data.Bool
import qualified Data.ByteString                  as BS
import           Data.Either.Combinators

import           Crypto.Macaroon.Internal
import           Crypto.Macaroon.Verifier.Internal


-- (.<) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
-- (.<) = verifyOpBool "Greater or equal" (<) "<"

-- (.<=) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
-- (.<=) = verifyOpBool "Strictly greater" (<=) "<="

-- (.==) :: (MonadIO m, Eq a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
-- (.==) = verifyOpBool "Not equal" (==) "="

-- (.>) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
-- (.>) = verifyOpBool "Less or equal" (>) ">"

-- (.>=) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
-- (.>=) = verifyOpBool "Strictly less" (>=) ">="


verify :: MonadIO m => Key -> [Caveat -> m (Maybe (Either ValidationError Caveat))] -> Macaroon -> m (Either ValidationError Macaroon)
verify secret verifiers m = join <$> forM (verifySig secret m) (verifyCavs verifiers)


-- verifyOpBool :: MonadIO m => String -> Parser a -> (a -> a -> Bool) -> BS.ByteString -> Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
-- verifyOpBool err p f op k val = verifyParser k valueParser $ \s -> do
--     expected <- val
--     return $ bool (Left $ ValidatorError err) (Right Win) =<< f expected <$> mapLeft ParseError (parseOnly p s)
--   where
--     valueParser = string op *> skipSpace *> takeByteString

verifyParser :: (MonadIO m) => Key -> Parser a -> (a -> m (Either ValidationError Win)) -> Caveat -> m (Maybe (Either ValidationError Caveat))
verifyParser k p f c = case parseOnly keyParser . cid $ c of
    Left _ -> return Nothing
    Right bs -> Just <$> case parseOnly p bs of
      Left err -> return $ Left $ ParseError err
      Right a -> fmap (const c) <$> f a
  where
    keyParser = string k *> skipSpace *> takeByteString
Commit	Line	Data
7f9f7386 JT	1	{-# LANGUAGE FlexibleInstances #-}
	2	{-# LANGUAGE OverloadedStrings #-}
	3	{-# LANGUAGE RankNTypes #-}
	4	{-# LANGUAGE TypeSynonymInstances #-}
	5	{-# LANGUAGE UndecidableInstances #-}
b92e3c15 JT	6	{-\|
	7	Module : Crypto.Macaroon.Verifier
	8	Copyright : (c) 2015 Julien Tanguy
	9	License : BSD3
	10
	11	Maintainer : julien.tanguy@jhome.fr
	12	Stability : experimental
	13	Portability : portable
	14
	15
	16
	17	-}
6f3c0dca	18	module Crypto.Macaroon.Verifier (
7f9f7386 JT	19	verify
	20	, ValidationError(ValidatorError, ParseError)
	21	-- , (.<), (.<=), (.==), (.>), (.>=)
	22	-- , module Data.Attoparsec.ByteString.Char8
6f3c0dca	23	) where
b92e3c15 JT	24
b92e3c15 JT	25
7f9f7386 JT	26	import Control.Monad
7f9f7386 JT	27	import Control.Monad.IO.Class
c830f7c2 JT	28	import Data.Attoparsec.ByteString
c830f7c2 JT	29	import Data.Attoparsec.ByteString.Char8
b92e3c15	30	import Data.Bool
c830f7c2	31	import qualified Data.ByteString as BS
7f9f7386	32	import Data.Either.Combinators
b92e3c15 JT	33
b92e3c15 JT	34	import Crypto.Macaroon.Internal
7f9f7386	35	import Crypto.Macaroon.Verifier.Internal
b92e3c15 JT	36
b92e3c15 JT	37
6f3c0dca	38
62576139	39
7f9f7386 JT	40	-- (.<) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
	41	-- (.<) = verifyOpBool "Greater or equal" (<) "<"
	42
	43	-- (.<=) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
	44	-- (.<=) = verifyOpBool "Strictly greater" (<=) "<="
	45
	46	-- (.==) :: (MonadIO m, Eq a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
	47	-- (.==) = verifyOpBool "Not equal" (==) "="
	48
	49	-- (.>) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
	50	-- (.>) = verifyOpBool "Less or equal" (>) ">"
	51
	52	-- (.>=) :: (MonadIO m, Ord a, Parsable a) => Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
	53	-- (.>=) = verifyOpBool "Strictly less" (>=) ">="
6f3c0dca	54
857f2f3b	55
7f9f7386 JT	56	verify :: MonadIO m => Key -> [Caveat -> m (Maybe (Either ValidationError Caveat))] -> Macaroon -> m (Either ValidationError Macaroon)
	57	verify secret verifiers m = join <$> forM (verifySig secret m) (verifyCavs verifiers)
	58
	59
	60	-- verifyOpBool :: MonadIO m => String -> Parser a -> (a -> a -> Bool) -> BS.ByteString -> Key -> m a -> Caveat -> m (Maybe (Either ValidationError Caveat))
	61	-- verifyOpBool err p f op k val = verifyParser k valueParser $ \s -> do
	62	-- expected <- val
	63	-- return $ bool (Left $ ValidatorError err) (Right Win) =<< f expected <$> mapLeft ParseError (parseOnly p s)
	64	-- where
	65	-- valueParser = string op > skipSpace > takeByteString
	66
	67	verifyParser :: (MonadIO m) => Key -> Parser a -> (a -> m (Either ValidationError Win)) -> Caveat -> m (Maybe (Either ValidationError Caveat))
	68	verifyParser k p f c = case parseOnly keyParser . cid $ c of
	69	Left _ -> return Nothing
	70	Right bs -> Just <$> case parseOnly p bs of
	71	Left err -> return $ Left $ ParseError err
	72	Right a -> fmap (const c) <$> f a
	73	where
	74	keyParser = string k > skipSpace > takeByteString
	75